$ rpki-client -vvf rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft (raw, json) Hash identifier: sthMtY4eDdRuJEQj/t9nZPtWYJnhYbV7iXSx0fFeXG4= Subject key identifier: CB:FA:89:6E:00:CC:43:ED:27:AF:32:E5:78:6A:DF:A9:A1:EE:F9:21 Authority key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 Certificate issuer: /CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft Manifest number: 6D Signing time: Fri 25 Apr 2025 05:52:36 +0000 Manifest this update: Fri 25 Apr 2025 05:52:35 +0000 Manifest next update: Fri 02 May 2025 05:52:35 +0000 Files and hashes: 1: RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl (hash: zF8hsc+HH2p1edQl7cavkDCz+1FDYcoWaXMZZJ/yjmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91807BB, serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Validity Not Before: Apr 25 05:52:35 2025 GMT Not After : May 2 05:52:35 2025 GMT Subject: CN=680b2324-ed03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:31:8c:00:99:cc:37:9a:66:c1:48:fc:72:ea: 9d:4f:55:ff:42:2d:dd:4a:e7:6b:ed:e9:5c:74:91: 0c:be:d2:7a:a4:eb:f6:3f:37:65:7d:25:cf:09:d0: 31:b3:2d:62:0e:92:1c:c7:45:d8:91:36:07:b7:3d: 55:fd:b1:1d:52:ae:a7:75:60:66:9c:3e:3a:93:3c: 08:0a:2a:ea:a8:93:65:dd:99:93:e9:df:3a:e9:57: 50:a4:a7:74:d2:13:63:2b:0e:31:b1:46:07:4d:80: f1:59:1b:a7:bc:b9:2c:ad:42:d6:14:d5:5a:ef:e7: f7:d6:d1:f1:c0:ae:5d:2c:c9:7d:53:25:c8:0a:bf: d5:52:03:05:ba:e8:63:e6:94:1a:49:88:0b:f4:57: 80:bc:ff:81:05:c5:56:65:d9:a3:be:85:79:21:d6: 8d:14:27:ac:b9:62:94:67:8f:03:3e:f5:06:1b:bb: 4c:8a:78:0d:1e:ba:6d:69:e7:33:62:80:ee:d2:04: 02:e6:70:17:a5:86:92:91:3a:fa:4b:2a:11:fa:8b: 7c:e2:fe:85:1f:78:0c:f8:e6:89:92:6e:0a:79:ba: ac:68:7d:30:80:2d:69:1e:c2:c0:97:6c:03:ca:5e: a7:98:fc:7a:da:88:03:fb:cc:64:42:bc:c9:10:15: 50:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:FA:89:6E:00:CC:43:ED:27:AF:32:E5:78:6A:DF:A9:A1:EE:F9:21 X509v3 Authority Key Identifier: keyid:44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:f7:6d:2e:6e:ba:72:ae:29:ad:64:26:1b:49:c8:ac:54:32: 8e:9e:7d:b7:ad:99:8a:c9:59:2e:95:97:0b:aa:6d:0d:89:ad: 9b:98:28:cc:6e:90:2e:8b:b9:b6:19:35:d0:1d:d6:9f:6f:3e: 19:88:8d:32:d3:af:59:d2:43:49:44:68:a7:1c:68:42:85:2c: ed:d9:59:f6:ee:f9:48:a9:dc:cb:a6:82:fc:3f:e5:0c:50:6b: 07:42:90:63:d1:a3:68:f7:e8:6f:a9:0a:f5:7c:9f:21:f8:35: 77:92:9e:fb:b6:35:f7:9b:df:e2:b0:cb:47:2f:51:15:38:bd: 99:c9:61:b1:fd:d4:25:48:0c:2d:78:b6:13:d1:ce:1e:2a:1e: 97:37:e0:52:2a:d4:be:1a:23:a9:be:2b:0b:ae:19:c3:e5:f3: 67:f0:e0:63:60:3d:8a:b4:ee:64:96:5f:d6:16:60:8c:24:f3: 8c:2a:a3:6d:a4:7a:40:18:29:2b:9b:16:db:71:b6:fa:8a:93: 7b:60:46:5d:9a:5c:1e:29:37:be:60:59:76:a8:74:cb:ab:42: f5:14:69:56:2f:e8:31:75:79:42:b9:29:9d:5c:c2:12:ab:85: df:1f:88:f8:0d:7e:5c:7c:6c:86:c8:d2:b2:3e:92:3a:93:2f: 79:cb:ef:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDdCQjExMC8GA1UEBRMoNDRGOUM0REE0N0U2MzcxRkQxQzlGOUY4RTU2NEQxODAz QTBGMzI4NzAeFw0yNTA0MjUwNTUyMzVaFw0yNTA1MDIwNTUyMzVaMBgxFjAUBgNV BAMTDTY4MGIyMzI0LWVkMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvMYwAmcw3mmbBSPxy6p1PVf9CLd1K52vt6Vx0kQy+0nqk6/Y/N2V9Jc8J0DGz LWIOkhzHRdiRNge3PVX9sR1Srqd1YGacPjqTPAgKKuqok2XdmZPp3zrpV1Ckp3TS E2MrDjGxRgdNgPFZG6e8uSytQtYU1Vrv5/fW0fHArl0syX1TJcgKv9VSAwW66GPm lBpJiAv0V4C8/4EFxVZl2aO+hXkh1o0UJ6y5YpRnjwM+9QYbu0yKeA0eum1p5zNi gO7SBALmcBelhpKROvpLKhH6i3zi/oUfeAz45omSbgp5uqxofTCALWkewsCXbAPK XqeY/HraiAP7zGRCvMkQFVArAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy/qJbgDM Q+0nrzLleGrfqaHu+SEwHwYDVR0jBBgwFoAURPnE2kfmNx/Ryfn45WTRgDoPMocw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwN0JCLzBBRTQ4MjkwN0NC MzExRUY5NkM5RjI1MEM0RjlBRTAyL1JQbkUya2ZtTnhfUnlmbjQ1V1RSZ0RvUE1v Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUlBuRTJrZm1OeF9SeWZuNDVXVFJnRG9QTW9jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw N0JCLzBBRTQ4MjkwN0NCMzExRUY5NkM5RjI1MEM0RjlBRTAyL1JQbkUya2ZtTnhf UnlmbjQ1V1RSZ0RvUE1vYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJD3bS5uunKuKa1kJhtJyKxUMo6efbetmYrJWS6VlwuqbQ2JrZuYKMxu kC6LubYZNdAd1p9vPhmIjTLTr1nSQ0lEaKccaEKFLO3ZWfbu+Uip3Mumgvw/5QxQ awdCkGPRo2j36G+pCvV8nyH4NXeSnvu2Nfeb3+Kwy0cvURU4vZnJYbH91CVIDC14 thPRzh4qHpc34FIq1L4aI6m+KwuuGcPl82fw4GNgPYq07mSWX9YWYIwk84wqo22k ekAYKSubFttxtvqKk3tgRl2aXB4pN75gWXaodMurQvUUaVYv6DF1eUK5KZ1cwhKr hd8fiPgNflx8bIbI0rI+kjqTL3nL7zA= -----END CERTIFICATE-----Generated at Sat Apr 26 03:39:38 2025 by rpki-client